Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A connection establishment method comprising: receiving, by a first user equipment, a served object group identifier sent by a network device, wherein the served object group identifier is used to indicate a first group of served objects for which the first user equipment provides a relay service; receiving, by the first user equipment, discovery information from a second user equipment, wherein the discovery information comprises a data link layer identity (ID) of the second user equipment and an identifier of a second group of served objects for which the second user equipment provides a relay service and a relay service request, the relay service request is used to request the relay service, and wherein the identifier of the second group is used to indicate a group of user equipment to which the second user equipment belongs or a group of users to which a user of the second user equipment belongs; and when the served object group identifier comprises the identifier of the second group, obtaining, by the first user equipment, the data link layer ID of the second user equipment from the discovery information, and establishing a connection between the first user equipment and the second user equipment according to the data link layer ID of the second user equipment.
This invention relates to a method for establishing connections between user equipment (UE) devices in a wireless network, particularly for relay services where one UE provides connectivity to other UEs. The problem addressed is efficiently matching UEs that can provide relay services with those requesting such services, ensuring secure and targeted connections. The method involves a first UE receiving a served object group identifier from a network device, which indicates a group of served objects (e.g., other UEs or users) for which the first UE provides relay services. The first UE then receives discovery information from a second UE, which includes the second UE's data link layer ID, an identifier of a second group of served objects for which the second UE provides relay services, and a relay service request. The second group identifier indicates the group of UEs or users to which the second UE belongs. If the served object group identifier of the first UE includes the second group identifier, the first UE extracts the second UE's data link layer ID from the discovery information and establishes a direct connection with the second UE using this ID. This ensures that relay services are only provided to authorized or compatible UEs, improving network efficiency and security. The method automates the matching and connection process, reducing manual configuration and ensuring seamless relay service provision.
2. The method according to claim 1 , wherein before the receiving, by the first user equipment, the served object group identifier from the network device, the method further comprises: sending, by the first user equipment, a service authorization request to the network device; and wherein the receiving, by first user equipment, the served object group identifier from the network device comprises: receiving, by the first user equipment, a service authorization response from the network device, wherein the service authorization response carries the served object group identifier.
This invention relates to a method for managing service authorization in a networked system, particularly for user equipment (UE) devices interacting with a network device. The problem addressed is the need for efficient and secure authorization of services, where user equipment must authenticate and receive authorization before accessing specific object groups served by the network. The method involves a first user equipment (UE) device initiating a service authorization process by sending a service authorization request to a network device. The network device processes this request and generates a service authorization response, which includes a served object group identifier (ID). This ID indicates which object group the UE is authorized to access. The UE then receives this response, thereby obtaining the necessary authorization to interact with the specified object group. The served object group ID is a key component, as it defines the scope of accessible resources or services within the network. By embedding this ID in the authorization response, the network ensures that the UE can only access authorized resources, enhancing security and resource management. This method streamlines the authorization process, reducing latency and improving efficiency in service delivery. The approach is particularly useful in systems where multiple UEs must be dynamically authorized to access different object groups based on their permissions.
3. The method according to claim 1 , wherein before the receiving, by the first user equipment, the served object group identifier from the network device, the method further comprises: receiving, by the first user equipment, a served object group name from the network device, wherein the served object group name corresponds to the served object group identifier; and sending, by the first user equipment, discovery request information to the network device, wherein the discovery request information comprises the served object group name; and wherein the receiving, by the first user equipment, the served object group identifier from the network device comprises: receiving, by the first user equipment, discovery acknowledgement information from the network device, wherein the discovery acknowledgement information comprises the served object group identifier.
In wireless communication systems, user equipment (UE) devices often need to discover and interact with specific groups of objects or services provided by network devices. A challenge arises in efficiently identifying and accessing these groups, particularly when the UE must first determine the relevant group before receiving detailed identifiers. This invention addresses this problem by enhancing the discovery process between a UE and a network device. The UE initially receives a served object group name from the network device, which corresponds to a served object group identifier. The UE then sends a discovery request to the network device, including the served object group name. In response, the network device provides discovery acknowledgement information containing the served object group identifier. This two-step process allows the UE to first identify the group by name before obtaining the specific identifier, improving the efficiency and clarity of the discovery mechanism. The method ensures that the UE can accurately request and receive the correct group identifier, facilitating seamless interaction with the network device. This approach is particularly useful in scenarios where multiple groups or services are available, and the UE needs to dynamically select the appropriate one.
4. The method according to claim 1 , wherein the discovery information further comprises a name of the second user equipment, wherein the name of the second user equipment is used to identify the second user equipment; wherein, before obtaining the data link layer ID of the second user equipment, the method further comprises: sending, by the first user equipment, first authentication information to the network device, wherein the first authentication information carries the name of the second user equipment; and wherein obtaining the data link layer ID of the second user equipment comprises: receiving, by the first user equipment, first authentication acknowledgement information from the network device, wherein the first authentication acknowledgement information carries the data link layer ID of the second user equipment.
This invention relates to wireless communication systems, specifically improving the discovery and authentication process between user equipment (UE) devices. The problem addressed is the lack of efficient and secure methods for identifying and establishing connections between UEs in a network, particularly when one UE needs to locate and authenticate another UE before data transmission. The method involves a first UE obtaining discovery information about a second UE, including the second UE's name, which is used to uniquely identify the second UE. Before retrieving the second UE's data link layer identifier (ID), the first UE sends first authentication information to a network device, where this information includes the second UE's name. The network device verifies the request and responds with first authentication acknowledgement information, which contains the second UE's data link layer ID. This ID is then used by the first UE to establish a direct communication link with the second UE. The process ensures secure and authenticated discovery, preventing unauthorized access while enabling efficient peer-to-peer communication. The use of the second UE's name as an identifier simplifies the discovery process, while the network-mediated authentication step enhances security. This method is particularly useful in scenarios requiring direct UE-to-UE communication, such as device-to-device (D2D) or proximity services (ProSe).
5. A connection establishment method comprising: receiving, by a network device, first authentication information from a first user equipment, wherein the first authentication information comprises an identifier of a second group of served objects for which a second user equipment provides a relay service, and the identifier of the second group is used to indicate a group of user equipment to which a second user equipment belongs or a group of users to which a user of the second user equipment belongs; obtaining, by the network device, a served object group identifier of the first user equipment, wherein the served object group identifier of the first user equipment is used to indicate a first group of served objects for which the first user equipment provides a relay service; when the served object group identifier of the first user equipment comprises the identifier of the second group, sending, by the network device, first authentication acknowledgement information to the first user equipment, wherein the first authentication acknowledgement information is used to instruct the first user equipment to provide the relay service for the second user equipment; and sending, by the network device, a data link layer identity (ID) of the second user equipment to the first user equipment, wherein the data link layer ID of the second user equipment is used to establish a connection between the first user equipment and the second user equipment.
This invention relates to a method for establishing connections in a network where user equipment (UE) devices provide relay services for other UEs. The problem addressed is efficiently managing and authenticating relay services between UEs to ensure secure and reliable data transmission. The method involves a network device receiving first authentication information from a first UE, which includes an identifier of a second group of served objects (e.g., other UEs or users) for which a second UE provides relay services. The identifier indicates the group affiliation of the second UE or its user. The network device then retrieves the served object group identifier of the first UE, which specifies the group of UEs or users for which the first UE provides relay services. If the first UE's served object group identifier includes the second group's identifier, the network device sends authentication acknowledgement to the first UE, instructing it to provide relay services for the second UE. Additionally, the network device sends the second UE's data link layer identity (ID) to the first UE, enabling the establishment of a direct connection between them. This ensures that relay services are provided only to authorized UEs within the same or compatible groups, enhancing security and efficiency in relay-based networks.
6. A first user equipment comprising a processor, a memory, a bus, and a receiver, wherein the processor, the memory, and the receiver are connected to each other by using the bus; the receiver is configured to cooperate with the processor to receive a served object group identifier from a network device, wherein the served object group identifier is used to indicate a first group of served objects for which the first user equipment provides a relay service; the receiver is further configured to cooperate with the processor to receive discovery information from a second user equipment, wherein the discovery information comprises a data link layer identity (ID) of the second user equipment an identifier of a second group of served objects for which the second user equipment provides a relay service and a relay service request, the relay service request is used to request the relay service, and the identifier of the second group is used to indicate a group of user equipment to which the second user equipment belongs or a group of users to which a user of the second user equipment belongs; and the processor is configured to, when the served object group identifier comprises the identifier of the second group received by the receiver, obtain the data link layer ID of the second user equipment from the discovery information, and establish a connection between the first user equipment and the second user equipment according to the data link layer ID of the second user equipment.
This invention relates to wireless communication systems, specifically to a method for user equipment (UE) to provide relay services based on group identifiers. The problem addressed is efficient relay service establishment between UEs in a network, particularly when UEs belong to specific groups of served objects (e.g., users or devices) that require relay assistance. The first UE includes a processor, memory, bus, and receiver interconnected via the bus. The receiver, working with the processor, receives a served object group identifier from a network device, which indicates a group of objects (e.g., users or devices) for which the first UE provides relay services. The receiver also obtains discovery information from a second UE, including the second UE's data link layer identity (ID), an identifier of a second group of served objects for which the second UE provides relay services, and a relay service request. The second group identifier indicates the group to which the second UE or its user belongs. If the served object group identifier received by the first UE includes the second group identifier, the processor extracts the second UE's data link layer ID from the discovery information and establishes a connection between the first and second UEs using this ID. This ensures relay services are provided only to UEs belonging to the specified groups, improving network efficiency and security. The system avoids unnecessary connections by verifying group membership before establishing links.
7. The first user equipment according to claim 6 , wherein the first user equipment further comprises a transmitter configured to cooperate with the processor to send a service authorization request to the network device; and the receiver is further configured to cooperate with the processor to receive a service authorization response from the network device, wherein the service authorization response carries the served object group identifier.
This invention relates to wireless communication systems, specifically improving service authorization and object management in user equipment (UE) devices. The problem addressed is the need for efficient and secure authorization of services and access to specific data objects in a networked environment. The invention describes a first user equipment (UE) device that includes a processor, a receiver, and a transmitter. The processor is configured to determine a served object group identifier (ID) associated with a group of data objects that the UE is authorized to access. The receiver is configured to receive a service authorization request from a network device, which may include a base station or server. The transmitter is configured to send a service authorization response to the network device, where the response includes the served object group ID. This allows the network to verify the UE's authorization status and grant access to the appropriate data objects. The UE may also be configured to receive a service authorization request from the network device and send a corresponding service authorization response carrying the served object group ID. This ensures that the UE can dynamically verify its authorization status with the network, enabling secure and efficient service access. The invention improves network efficiency by reducing unnecessary authorization checks and ensuring that only authorized UEs can access specific data objects.
8. The first user equipment according to claim 6 , wherein the receiver is further configured to cooperate with the processor to receive a served object group name from the network device, wherein the served object group name corresponds to the served object group identifier; the first user equipment further comprises a transmitter configured to cooperate with the processor to send discovery request information to the network device, wherein the discovery request information comprises the served object group name; and the receiver is further configured to cooperate with the processor to receive discovery acknowledgement information from the network device, wherein the discovery acknowledgement information comprises the served object group identifier.
In wireless communication systems, user equipment (UE) devices often need to discover and interact with network devices or other UEs within a specific group. A challenge arises in efficiently identifying and communicating with these groups, particularly when group identifiers are not directly known to the UE. This invention addresses this problem by enhancing the discovery process between a first UE and a network device. The first UE includes a receiver and a processor that cooperate to receive a served object group name from the network device. This name corresponds to a served object group identifier, which uniquely identifies a group of devices or resources. The UE also includes a transmitter that cooperates with the processor to send discovery request information to the network device. This request includes the served object group name, allowing the network device to verify the UE's intent to join or interact with the group. The receiver then receives discovery acknowledgement information from the network device, which includes the served object group identifier. This identifier enables the UE to establish communication with the group or access the associated resources. By using a name-based discovery mechanism, the invention simplifies the process of identifying and joining object groups, improving efficiency and reducing the complexity of group-based communication in wireless networks.
9. The first user equipment according to claim 6 , wherein the discovery information further comprises a name of the second user equipment, wherein the name of the second user equipment is used to identify the second user equipment; the first user equipment further comprises a transmitter configured to cooperate with the processor to send first authentication information to the network device, wherein the first authentication information carries the name of the second user equipment; and the receiver is further configured to cooperate with the processor to receive first authentication acknowledgement information from the network device, wherein the first authentication acknowledgement information carries the data link layer ID of the second user equipment.
This invention relates to wireless communication systems, specifically improving device discovery and authentication in networks. The problem addressed is the need for efficient and secure identification of user equipment (UE) during direct communication, ensuring proper authentication before data exchange. The system involves a first UE that discovers a second UE by obtaining discovery information, which includes the second UE's name. This name is used to uniquely identify the second UE. The first UE then sends first authentication information to a network device, embedding the second UE's name. The network device verifies the authentication request and responds with first authentication acknowledgement information, which includes the second UE's data link layer ID. This ID is used to establish a secure connection between the UEs. The invention enhances security by ensuring that the network device validates the identity of the second UE before providing its data link layer ID, preventing unauthorized access. The process allows the first UE to authenticate the second UE using its name and subsequently obtain the necessary identifier for direct communication. This method improves reliability and trust in device-to-device interactions within the network.
10. A network device comprising a processor, a memory, a bus, a receiver, and a transmitter, wherein the processor, the memory, the receiver, and the transmitter are connected to each other by using the bus; the receiver is configured to cooperate with the processor to receive first authentication information from a first user equipment, wherein the first authentication information comprises an identifier of a second group of served objects for which the second user equipment provides a relay service, and the identifier of the second group is used to indicate a group of user equipment to which a second user equipment belongs or a group of users to which a user of the second user equipment belongs; the processor is configured to obtain a served object group identifier of the first user equipment, wherein the served object group identifier of the first user equipment is used to indicate a group of served objects for which the first user equipment provides a relay service; and the transmitter is configured to, when the served object group identifier obtained by the processor comprises the identifier of the second group received by the receiver, cooperate with the processor to send (a) a data link layer identifier (ID) of the second user equipment and (b) first authentication acknowledgement information to the first user equipment, wherein the data link layer ID of the second user equipment is used to establish a connection between the first user equipment and the second user equipment and the first authentication acknowledgement information is used to instruct the first user equipment to provide the relay service for the second user equipment.
This invention relates to network devices that facilitate relay services between user equipment (UE) in a wireless communication system. The problem addressed is the efficient and secure establishment of relay connections between UEs, particularly when the relay service is provided by a first UE for a second UE that belongs to a specific group of served objects or users. The network device includes a processor, memory, bus, receiver, and transmitter interconnected via the bus. The receiver obtains first authentication information from a first UE, which includes an identifier of a second group of served objects for which a second UE provides relay services. This identifier indicates either the group of UEs or the group of users associated with the second UE. The processor retrieves the served object group identifier of the first UE, which specifies the group of served objects for which the first UE provides relay services. If the first UE's served object group identifier includes the second group's identifier, the transmitter sends the second UE's data link layer identifier (ID) and first authentication acknowledgement information to the first UE. The data link layer ID enables the first UE to establish a direct connection with the second UE, while the acknowledgement instructs the first UE to provide relay services for the second UE. This ensures secure and efficient relay service provisioning based on group affiliations.
11. The connection establishment method according to claim 5 , including: receiving a service authorization request from the first user equipment; and sending a service authorization response to the first user equipment, wherein the service authorization response carries the served object group identifier.
This invention relates to a connection establishment method for managing service authorization in a communication network, particularly addressing the need for efficient and secure service access control. The method involves a system where a first user equipment (UE) requests authorization to access a service, and a network entity processes this request to grant or deny access based on predefined criteria. The method includes receiving a service authorization request from the first UE, which may be a device seeking to connect to a network service. The network entity evaluates the request and, if authorized, sends a service authorization response to the first UE. This response includes a served object group identifier, which uniquely identifies a group of objects or services the UE is permitted to access. The served object group identifier ensures that only authorized UEs can interact with specific network resources, enhancing security and access control. The method may also involve determining whether the first UE is authorized to access the service based on stored authorization data, such as user credentials or subscription details. If authorized, the network entity generates the served object group identifier and includes it in the response. This identifier may be used by the UE to establish a connection with the appropriate network resources or services. The method ensures that only properly authenticated and authorized UEs can access the intended services, preventing unauthorized access and improving network security.
12. The connection establishment method according to claim 5 , including: sending a served object group name to the first user equipment, wherein the served object group name corresponds to the served object group identifier; receiving discovery request information from the first user equipment, wherein the discovery request information comprises the served object group name; and sending discovery acknowledgement information to the first user equipment, wherein the discovery acknowledgement information comprises the served object group identifier.
This invention relates to a method for establishing connections in a wireless communication system, specifically addressing the challenge of efficiently discovering and connecting user equipment (UE) devices within a network. The method focuses on managing and identifying groups of served objects, such as network resources or services, to facilitate seamless and secure communication between devices. The method involves a network node sending a served object group name to a first UE, where the name corresponds to a served object group identifier. The UE then transmits a discovery request containing the served object group name to the network. Upon receiving this request, the network responds with discovery acknowledgement information, which includes the served object group identifier. This exchange enables the UE to identify and connect to the appropriate group of served objects, ensuring efficient resource allocation and service discovery. The method also includes steps for the UE to initiate the discovery process by sending the served object group name, allowing the network to verify and confirm the UE's access to the specified group. The served object group identifier ensures that the UE can accurately identify and interact with the correct network resources or services. This approach enhances the reliability and security of the connection establishment process, particularly in environments where multiple UEs and served objects coexist. The method is designed to optimize network performance by reducing unnecessary signaling and improving the efficiency of resource discovery and allocation.
13. The connection establishment method according to claim 5 , wherein the discovery information further comprises a name of the second user equipment, wherein the name of the second user equipment is used to identify the second user equipment; receiving first authentication information from the first user equipment, wherein the first authentication information carries the name of the second user equipment; and sending first authentication acknowledgement information to the first user equipment, wherein the first authentication acknowledgement information carries the data link layer ID of the second user equipment.
This invention relates to a method for establishing a connection between user equipment (UE) devices in a wireless communication system, specifically addressing the challenge of securely and efficiently identifying and authenticating devices before establishing a data link layer connection. The method involves exchanging discovery information between a first UE and a second UE, where the discovery information includes the name of the second UE, which serves as an identifier for the second UE. The first UE then sends first authentication information to the second UE, where this authentication information includes the name of the second UE. Upon receiving this authentication information, the second UE verifies the identity of the first UE and sends first authentication acknowledgement information back to the first UE. This acknowledgement information includes the data link layer ID of the second UE, which the first UE uses to establish a secure connection. The method ensures that both devices are properly authenticated before a connection is formed, enhancing security and reliability in device-to-device communication. The data link layer ID is a unique identifier assigned to the second UE at the data link layer, facilitating direct communication between the devices. This approach improves the efficiency and security of connection establishment in wireless networks by leveraging name-based identification and authentication before exchanging critical connection parameters.
14. The network device according to claim 10 , wherein the receiver is further configured to cooperate with the processor to receive a service authorization request from the first user equipment; and the transmitter is further configured to cooperate with the processor to send a service authorization response to the user equipment, wherein the service authorization response carries the served object group identifier.
A network device is configured to manage service authorization in a communication system. The device includes a receiver, a transmitter, and a processor. The receiver is configured to receive a service authorization request from a first user equipment (UE). The processor determines a served object group identifier based on the request, where the served object group identifier corresponds to a group of objects that the UE is authorized to access. The transmitter sends a service authorization response to the UE, where the response includes the served object group identifier. This allows the UE to identify the specific objects it is permitted to access within the network. The network device may also be configured to manage object group identifiers for multiple UEs, ensuring that each UE receives only the identifiers for the objects it is authorized to access. This system improves security and efficiency in service authorization by dynamically assigning and transmitting only the necessary identifiers to each UE.
15. The network device according to claim 10 , wherein the transmitter is further configured to cooperate with the processor to send a served object group name to the first user equipment, wherein the served object group name corresponds to the served object group identifier; the receiver is further configured to cooperate with the processor to receive discovery request information from the user equipment, wherein the discovery request information comprises the served object group name; and the transmitter is further configured to cooperate with the processor to send discovery acknowledgement information to the first user equipment, wherein the discovery acknowledgement information comprises the served object group identifier.
This invention relates to network devices in wireless communication systems, specifically addressing the discovery and management of object groups in proximity-based services. The problem solved involves efficiently enabling user equipment (UE) to discover and interact with nearby devices or objects grouped for shared services, such as content delivery or collaborative applications. The network device includes a processor, a transmitter, and a receiver. The processor manages a served object group, which is a collection of devices or objects providing a specific service. The transmitter sends a served object group name to a first UE, where this name corresponds to a unique served object group identifier. The receiver then receives discovery request information from the UE, which includes the served object group name. The transmitter responds by sending discovery acknowledgement information back to the UE, containing the served object group identifier. This allows the UE to identify and interact with the correct object group for the desired service. The system ensures that UEs can efficiently discover and access services from nearby object groups by using a two-step process: first, the UE learns the group name, and then it requests and receives the group identifier to establish communication. This improves the reliability and efficiency of proximity-based service discovery in wireless networks.
16. The network device according to claim 10 , wherein the discovery information further comprises a name of the second user equipment, wherein the name of the second user equipment is used to identify the second user equipment; the receiver is further configured to cooperate with the processor to receive first authentication information from the first user equipment, wherein the first authentication information carries the name of the second user equipment; and the transmitter is further configured to cooperate with the processor to send first authentication acknowledgement information to the first user equipment, wherein the first authentication acknowledgement information carries the data link layer ID of the second user equipment.
This invention relates to network devices in wireless communication systems, specifically addressing the challenge of securely and efficiently discovering and authenticating user equipment (UE) in a network. The network device facilitates communication between a first UE and a second UE by exchanging discovery and authentication information. The discovery information includes the name of the second UE, which is used to identify it. The network device receives first authentication information from the first UE, which includes the name of the second UE. Upon receiving this information, the network device sends first authentication acknowledgement information back to the first UE, containing the data link layer identifier (ID) of the second UE. This process enables the first UE to authenticate and establish a secure connection with the second UE using the provided identifier. The system ensures that UEs can discover and authenticate each other without exposing sensitive information directly, enhancing security and efficiency in wireless communications. The network device acts as an intermediary, managing the exchange of identifiers and authentication data to facilitate secure peer-to-peer or device-to-device communication.
Unknown
January 21, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.